Senior Resource- Information Security

As a Senior Resource Information Security at a scheduled commercial bank in Thrissur, you will be responsible for leading risk management, compliance, and security operations. With a minimum of 15 years of experience in the BFSI sector, you will play a crucial role in ensuring the organization's cybersecurity posture aligns with regulatory standards and industry best practices. **Key Responsibilities:** - Develop and enforce security policies, procedures, and frameworks such as NIST, ISO 27001, PCI DSS. - Ensure regulatory compliance with RBI, SEBI, UIDAI, NPCI, ITGC, and risk management frameworks. - Provide strategic direction and leadership for enterprise-wide cybersecurity initiatives. - Oversee the identification, assessment, and mitigation of cybersecurity risks according to industry standards. - Collaborate with cross-functional teams to integrate cybersecurity best practices into new technologies and systems. - Lead and manage a team of cybersecurity professionals, offering mentorship and guidance to enhance security posture. - Conduct regular security assessments, audits, and penetration testing to identify vulnerabilities. - Communicate effectively with senior management and stakeholders to report on cybersecurity initiatives and risk management efforts. - Lead regulatory audits and participate in compliance assessments. - Conduct cyber drills to assess incident response capabilities. - Manage security operations including SIEM, DLP, XDR, and threat intelligence. - Oversee DC/DR design & implementation, network & security architecture for banking systems. - Lead VA/PT, third-party/vendor security audits, and risk assessments. - Conduct security awareness programs and training for teams. - Foster a security-first culture within the organization. **Qualifications & Skills:** - Minimum 10 years experience in information security department of a bank, handling regulatory audits. - In-depth knowledge of banking security infrastructure, DC/DR, cloud security, and application security. - Strong leadership, analytical, and stakeholder management skills. - Proven experience in SOC 2 compliance and cybersecurity operations. - Familiarity with RBI regulations, data protection, and global privacy laws. - Experience in managing cybersecurity programs in global markets. As a candidate, you should hold a BTech/MCA/MTech in Computer Science, IT, or a related field. Certifications such as ISO 27001 LA/LI, ISO 31000, CISA, CISM, CISSP, or ITIL are preferred to demonstrate your expertise in the field.,